Static task
static1
Behavioral task
behavioral1
Sample
168cee426abfa420dbb2d615581d536d_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
168cee426abfa420dbb2d615581d536d_JaffaCakes118
-
Size
417KB
-
MD5
168cee426abfa420dbb2d615581d536d
-
SHA1
c9d115831ac5d7201ba9f02dc5d6c89d1a72fddb
-
SHA256
0541e4c04db9b97f06a4b0d951a3ed2b80dbe3618618536ddd6a2ce62cae4f57
-
SHA512
c55f7db9ab6efc08ba36c5729a56c1a5cb5c608132385dd4b56ff2d7719e35e743c0e84eb35f1ba3ecc3613b673f298ad2544b642bdc9f610350f1d7ef490b2c
-
SSDEEP
6144:JlCFKDMcyNxY+sDdQMNqL2FVWJ2hoRIcb/GvlpsWsvvzgp4DvxmHUefa6:nw8yN3eiGwJRRIcDGvavv8p4y
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 168cee426abfa420dbb2d615581d536d_JaffaCakes118
Files
-
168cee426abfa420dbb2d615581d536d_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 415KB - Virtual size: 414KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 832B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ